Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA 200908-06 Normal: CDF User-Assisted Code Execution

gentoo
Calendar Grey August 18, 2009
Dist Gentoo Esm H88
Gentoo Linux Security Advisory GLSA 202310-09 concerning vulnerabilities in CDF file processing could trigger code execution via buffer overflows.
Multiple heap-based buffer overflows in CDF might result in the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200908-06 https://security.gentoo.org/ Severity: Normal Title: CDF: User-assisted execution of arbitrary code Date: August 18, 2009 Bugs: #278679 ID: 200908-06

Synopsis ======= Multiple heap-based buffer overflows in CDF might result in the execution of arbitrary code.
Background ========= CDF is a library for the Common Data Format which is a self-describing data format for the storage and manipulation of scalar and multidimensional data. It is developed by the NASA.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sci-libs/cdf < 3.3.0 >= 3.3.0
========== Leon Juranic reported multiple heap-based buffer overflows ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo code execution heap overflow arbitrary code normal cdf

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo code execution heap overflow arbitrary code normal cdf

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here